Endpoint Security Engineer

Leidos Orlando , FL 32801

Posted 7 days ago

Job Description:

The Leidos Cybersecurity Capabilities Organization has an immediate opening for an experienced, and motivated Endpoint Security Engineer. In this role, you will work with the Leidos Cybersecurity Intelligence and Response Center (CSIRC), Security Controls and Configuration (SCC) Team, and other Security Engineering and Architecture (SAE) organizations to design, deploy, and configure technical controls to protect Leidos enterprise endpoints. The focus will be on enterprise privilege management. This engineer will be expected to support the design, maintenance, and documentation of the Leidos endpoint privilege management solution. Finally, the engineer will evaluate systems with the goal of identifying and remediating existing gaps in vendor solutions and platform technologies.

This position can be supported from one of our following locations: Gaithersburg

  • MD, Orlando

  • FL, or Reston

  • VA


  • Act as a technical SME for the Endpoint Security Engineering team responsible for the design, maintenance, and documentation of the Leidos endpoint privilege management solution.

  • Work closely with the CSIRC and assist them with Intrusion Response activity with appropriate security countermeasures and forensic investigations.

  • Work closely with SCC to ensure technical security policy balances security best practices and corporate usability.

  • Be responsible for refining policies, processes and procedures as it relates to the Leidos endpoint privilege management solution.

  • Collaborate using information and knowledge sharing networks and professional relationships to achieve common goals.


  • Bachelor's degree and minimum 8 years of experience in Information Security. Additional experience and/or technology certifications may be considered in lieu of Bachelor's degree. This should include 2+ years of endpoint security experience.

  • Hands on experience with managing and maintaining Access Control Lists including Elevated Privileges and enhanced privilege escalation management. (Popular commercial examples include: BeyondTrust, Bomgar, CyberArk, and others)

  • Experience operating, troubleshooting, installing, or configuring endpoint security solutions (e.g. Antivirus, Application Whitelisting, Host Intrusion Prevention, Host based Firewall, Forensic Analysis Tools, Advanced Malware Solutions, IOC Sweepers)

  • Ability to write and verbally communicate information security and risk-related concepts effectively to both technical and non-technical audiences.

  • Must have strong problem-solving and analytical skills and demonstrate poise and ability to act calmly and competently.

  • Foundational understanding of accepted security practices, operating systems, troubleshooting issues, attack vectors, and customer support.

  • Must have strong interpersonal and networking skills.

  • US citizenship is required and able to obtain security clearance.


  • Knowledgeable of forensic procedures and practices including imaging and memory analytics. Specifically the design, maintenance, and documentation of enterprise forensic capabilities. (Popular commercial products include: EnCase, FTK, and others)

  • Windows 10 security best practices and configurations.

  • Linux System Administration Experience or experience with Linux OS hardening.

  • Strong understanding of advanced threat detection in an enterprise environment.

  • Strong understanding of automated intelligence distribution methods.

  • Strong Understanding of TCP/IP, Networking, and Network Security Concepts.

  • GIAC GCIA Certification or other cyber security certifications are a plus.


Leidos is a Fortune 500 information technology, engineering, and science solutions and services leader working to solve the world's toughest challenges in the defense, intelligence, homeland security, civil, and health markets. The company's 31,000 employees support vital missions for government and commercial customers. Headquartered in Reston, Virginia, Leidos reported annual revenues of approximately $10.17 billion for the fiscal year ended December 29, 2017. (NYSE: LDOS) All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status.

See if you are a match!

See how well your resume matches up to this job - upload your resume now.

Find your dream job anywhere
with the LiveCareer app.
Download the
LiveCareer app and find
your dream job anywhere

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Product & Service Owner Endpoint Security

NBC Universal

Posted 4 weeks ago

VIEW JOBS 10/16/2018 12:00:00 AM 2019-01-14T00:00 Responsibilities Join NBCUniversal and help us build Host monitoring and protection platforms and services that enable and protect the experience of our businesses. This role is a part of the Cyber Security Platforms team, responsible for security technology that supports the entire NBCUniversal enterprise. You'll own product strategy and service management for a key Cyber Security practice area. You'll * Develop, plan, and implement a strategy for continually evolving host monitoring and protection in support of our overall NBCUniversal Cyber Security vision. Create a roadmap and drive our progress along it. * Partner with the technical operations teams to enhance, maintain and sustain our endpoint security platforms, including anti-malware, system hardening, and EDR. Deliver security services smoothly in a global, 24x7 enterprise. * Work with architects and engineers to build the tech for your roadmap and meaningfully move the needle for our security capabilities. Lead and influence design, development, and implementation across teams. * Understand and empathize with our Cyber Security stakeholders (such as NBC News, Universal Pictures, and Parks & Resorts). Ensure our services are real solutions that help our businesses deliver world-class content and experiences - securely. * Be a point of a contact for engagement and escalations and keep services focused toward SLAs and key milestones. Value accountability and manage expectations deftly. * Mentor engineers and other technologists to develop NBCUniversal's security mindset. Help them understand the domain, ask hard questions, think strategically, and grow as security professionals. Qualifications/Requirements * Deep technical understanding of multiple platforms, products, and concepts in the endpoint protection space such as: Exploit mitigation, anti-virus/malware, telemetry and monitoring tools, and management tooling across Windows, Linux and Mac * Strong communication abilities, a desire to build consensus, and a comfort relaying technical and security principles and decisions to a wide range of audiences * Experience designing and operating security tools and services at enterprise-scale * Comfort engaging in deeply technical efforts while keeping a strategic view and staying focused on key goals * An understanding of security risk and a willingness to make risk-based decisions balancing the urgent and the important * A thirst for improvement and an inclination to thoughtfully challenge the status quo * Desire to try things and iterate on them, fail fast, and focus on features that matter Desired Characteristics * Experience working with vendor-integrated systems and appliances, broadcast systems, open-source host protection software (Santa, osquery, etc.), or commercial EDR platforms * Understanding threat intelligence, ATT&CK framework, Cyber Kill Chain, or the Pyramid of Pain, and how they fit into developing internal security strategy * Orchestrating security tools across complex environments to improve IR and investigations * Data-driven decision making, light data analytics, and metrics/data visualization * Comfort with scripting or software development * Exposure to security compliance requirements/frameworks such as ISO27001, PCI/DSS, NIST 800-53, etc. NBC Universal Orlando FL

Endpoint Security Engineer